Configuration Parameters

This section contains the information that this connector uses to connect and interact with the application. Each application type requires different information to create and maintain a connection.

The Salesforce connector uses the following connection parameters:

Note
All attributes marked with an asterisk (*) are mandatory attributes.

Select authentication type:

  • Basic Authentication

  • OAuth2

Timeout value in minutes

Default – One minute

Enable this to exclude users that have the flag value for IsFrozen set to true in Salesforce.

Enable this to create new Salesforce contacts while creating new users. The newly created contacts use the same attribute data provided for the new users as applicable. For information on adding user attributes to contacts refer to Extending Your Integration.

Note
SailPoint only supports simultaneous contact creation during user creation at this time. Simultaneous contact updates and deletions aren't supported during user updates or deletions.

Retrieves the active accounts during account aggregation. Otherwise it retrieves all the accounts which are enabled or disabled during account aggregation.

This parameter defines the password used for logging in to the managed system.

This is the API user's Salesforce.com password. If the client's IP address has not been whitelisted in your organization, add a security token to your password for OAuth 2.0 authentication.

Password must be Account Password + Security Token.

For example, if you have account password such as SAilpoint123 and the security token is @34567, the combined password entry will be SAilpoin123@34567

Helps to determine the scope of the users or profiles that are retrieved during Account or Account-Group aggregation.

For example, specifying the following search query retrieves only Active Users during Account Aggregation:

select Id from User where IsActive = true

The scope of users or profiles retrieved during aggregation can be defined using custom attributes in the where clause as follows:

select Id from User where EMP_DEPARTMENT__c= 'tester'

Note
Only the where clause of the search query can be modified as required.

While configuring the Salesforce application if where clause in Search Query For User/Profile field contains an apostrophe (') then uses a backslash (\) prefix to apostrophe.

For example:

Find Id,username from user where lastname is buru'4

Expected Query: Select Id,username from user WHERE lastname ='buru\'4'

Note

If Manage Active Accounts is selected then it adds the following condition into the where clause of the user search query:

AND user.IsActive = true

Display name attribute. It’s typically in an email address format.

For example:

denise.hunt@demoexample.com

If you set the Authentication Type as Basic Authentication:

Note
Not Applicable if Enable OAuth2 API is selected.

Enter the fully qualified URL to the root of the Salesforce server.

For example:

http://login.salesforce.com/services/Soap/u/26.0/

To find the URL of your site, log in to salesforce.com:

  1. Select Develop under the Application heading.

  2. Go to API > Generate Partner WSDL

  3. Select Generate.

The URL is located under the SalesforceService service name.